package com.weidft.biz.filter;

import java.io.IOException;

import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;

import com.weidft.biz.permission.GrantManager;
import com.weidft.web.wd.controller.Basic;

public class PermissionFilter extends Basic implements Filter {

    public void init(FilterConfig arg0) throws ServletException {
    }

    public void doFilter(ServletRequest arg0, ServletResponse arg1, FilterChain arg2) throws IOException,
                                                                                     ServletException {
        String uri = ((HttpServletRequest) arg0).getRequestURI();
        //System.out.println(uri);
        if (!check) {
            arg2.doFilter(arg0, arg1);
            return;
        }

        HttpServletRequest request = ((HttpServletRequest) arg0);
        HttpServletResponse response = ((HttpServletResponse) arg1);
        HttpSession session = request.getSession();
        Integer wdUserId = (Integer) session.getAttribute("wdUserId");
        if (wdUserId == null) {
            response.sendRedirect("/login/loginUpdate/login.htm");
            return;
        }
        if (GrantManager.checkUserGrant(wdUserId, uri, request)) {
            arg2.doFilter(arg0, arg1);
            return;
        } else {
            response.sendRedirect("/login/loginUpdate/noPermission.htm");
            return;
        }
    }

    public void destroy() {
    }

    public void setCheck(boolean check) {
        this.check = check;
    }

    private boolean check;
}
